ALSA-2021:4270

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/8/ALSA-2021-4270.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2021:4270.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2021:4270

Related

CVE-2021-29922

Published

2021-11-09T08:54:06Z

Modified

2021-11-12T17:54:17Z

Summary

Moderate: rust-toolset:rhel8 security, bug fix, and enhancement update

Details

Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries.

The following packages have been upgraded to a later upstream version: rust (1.54.0). (BZ#1945805)

Security Fix(es):

rust: incorrect parsing of extraneous zero characters at the beginning of an IP address string (CVE-2021-29922)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

https://vulners.com/cve/CVE-2021-29922

Affected packages

AlmaLinux:8 / rust-toolset

Package

Name: rust-toolset

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.54.0-1.module_el8.5.0+2599+d655d86c